ACCESS GATEWAY
System Administration 87
AH – See Setting joint ESP and AH parameters to set parameters that pertain to both
ESP and AH policies.
Setting joint ESP and AH parameters
These parameters affect both ESP and AH policies.
Select all the Acceptable authentication algorithms by putting a check in the
checkbox of each option; the options are:
MD5, SHA, and NULL. The default settings
are
MD5 and SHA.
Select the Perfect Forward Secrecy Strength to enable PFS. PFS makes the keying
material used in protecting the data independent of the keying material used for
protecting the IKE exchanges. The options are
None, 768-bit, and 1024-bit. The
default setting is
None.
Enter the maximum lifetime (in seconds) in the Maximum Lifetime field. The default
settings
28800.
Enter the maximum life size (in kbytes) in the Maximum Lifesize field.
Enable the automatic renewal option by putting a check in the Automatic renewal
checkbox. The default setting is enabled.
8. Click Add to add the policy to the IPSec Security Policy table on the IPSec Tunnel
Settings screen.
9. Click the Back to Main IPSec Tunneling Settings page link to return to the IPSec
Tunnel Settings screen.
Modifying an Existing IPSec Security Policy
1. Click on the IPSec security policy link that you wish to modify in the IPSec Security
Policies
table. The IPsec Tunnel Security Policy Settings screen opens.
2. Modify the settings as desired.
3. Click:
Modify to save the changes to the policy.
Remove to remove the security policy from the IPSec Security Policies table.
Reset to undo any changes you made to the policy settings and return the policy to its
original settings.
4. Click the Back to Main IPSec Tunneling Settings page link to return to the IPSec
Tunnel Settings screen.
To Next Page
Loading...
